DDoS attacks on 21sextury servers
 

Just got this

BTW....21sexturycash guys, if you read this, and your network is truly that important....go here www.prolexic.com

prolexic is bullshit, any serious botnet owner can crush them, search google carefully

yah i got that email too... sux for them, hopefully they get everything straightened out

sucks for them...

Thank you for the info on prolexic, we saw that already, but it doesn't really help on the attacks we get. There is an another thread related to this issue. I can't post it here, as I don't have enough posts yet. So if you are interested please search 21sextury, and the thread will show up in the top3 results

i don't see how the largest ddos prevention company in the world can't help you?

Depends what kind of ddos attack it is probrably

ah, ok, I see now, this isn't a "classic" DDOS, this is basically a nats based attack

anyways, we are trying to find a solution, whatever way works

Best of luck with your problem. :/


Brad

change your ISP and host your servers with trusted hosting that can filter out DDoS on hardware level. you can see sig, or find something yourself. :)

The problem is not a ddos by itself. The problem is that they attack NATS specific codes.

with the right sized botnet you can cripple pretty much any network of sites.

How does that work in n00b language?

they're attacking flaws in the NATS software itself

So this is a problem everybody using NATS can walk into?

Gero, please contact me asap. ICQ: 5596373 or AIM JohnA1078, or by phone tomorrow after 10am EST, 732-385-1536 x111.

Is that a yes?

No.

5678

Anyways about NATS, to make it clear, I didn't say and don't want to be interpreted as I said that it's the problem of the software why we are down.

Sorry if it was misunderstanding for anybody on NATS.

It was called a NATS based attack so thats what made me wonder, not asuming anything man.

Good luck with the attack hope it gets resolved quickly!

Everyone using any kind of php/mysql-based software can run into such issues, NATS included.

True...

NATS should be able to profile this kind of attack since the code is on their servers.

Bro, it's not a fault coming from NATS. It could be whatever software you use.

thats not what he is saying he is saying nats should be able to help isolate the problem as it IS being used.

Just curious what brought this about , usually its when a mailer doesnt get paid..:winkwink:

hahah - yeah, like this guy?? Spam I found in my email box today...

lol your one step ahead of me i was just gonna go look in my inbox and see if i had spam from them, that usually explains it..


once you get in bed with these guys its hard to get back out of bed , especially when your holding the loot lol

anyways hopefully the problems get fixed , and hopefully people/sponsors will take this thread in mind .. if you deal with unethical people or in an unethical manner it comes back to bite you in the ass.

Now this whole thing might just be coincidence , but when a sponsor is getting ddos its usually mailers and they usually have a reason :)

lets hope this is an isolated problem

That's no good... I hope they can solve their problems soon...

DDOS at the application level or network level ? ... it is a BIG difference because 21sextury cash can stop the application level attacks but if there it is a network attack only ISP should stop this

I call bullshit on 'prolexic can't help'. They filter application-level attacks as part of their business, otherwise they would be completely worthless. It is EXTREMELY rare to find a simple "massive" ddos attack any more, meaning 5, 10, 15gbit of inbound traffic simply meant to overwhelm equipment/routers/etc. This is fairly easily filtered by large hosts, and DDoS filtering companies. It's simply a matter of having more network and hardware capacity than the attackers.

The harder to filter stuff are HTTP based attacks that appear to be "legit" traffic hitting specifc applications. They may simply make get requests for pages that have high overhead, or actually follow a transaction model. However, companies where DDoS is their business absolutely do have means to protect against this. It's not cheap, and isn't easy, but it is possible if your downtime is worth more than the cost to stay up. Many mechanisms exist, but generally since HTTP attacks cannot be spoofed they revolve around watching all connections, when one IP is seen too much they get redirected to a capchta based system of some sort. If the attack still is working, all traffic can be redirected. Yes, this does have an effect on your traffic of course - but it's better than being 100% down. There are also multitudes of other ways.

In short, I wouldn't just lay down and give up. DDoS sucks, is expensive as hell to filter, but it is possible if given enough equipment, capacity, and knowledge. However, there may simply be a point where it's cheaper to leave sites down a for a few days or a week, than pay an easy 6 figures to filter them for that time period.

Good luck to everyone involved!

-Phil

I wish it would be the issue, at least we would know someone who hates us bad. But we never spam and use mailers.

Yeah, guess what, I got this spam as well, not only this but tonnes of similar ones with copy-pasted text from our websites. I can only stress it, we never ever spam.

We never hired spammers. We never hired anybody with unethical manners. NEVER and WILL NEVER DO THAT.

Might it be a reason for this attack if we banned spammers from our program due to the fact that it's clearly stated in our terms, that we have ZERO TOLERANCE TOWARDS SPAM?

The attack we got is BOTH, application and network level.

Anyways what I couldn't understand when I got this spam as well, that why it is not having a referral code? I mean what is the reason for anybody to send out spams - without being asked/hired/anything - for our websites, just having the pure domain in it? Can it be a part of a process to destroy our image?

yeah - was gonna say I got a bunch of other ones like that in my inbox..
glad you don't support them..

Because if it is, then it's pretty smart. I was pissed of myself getting these spams at least 15times a day. After this anybody on Earth can be so pissed of to ddos us.

That's why it's so strange. Why would anybody want to send out spam if they don't profit from it? Only reason can be to hurt somebody, right now us. :(

CAN PLEASE ANYBODY WHO GOT THIS SPAM, SEND THE MAIL HEADER TO sales aT 21sextury d0t com

gero, seriously, I have rethought this, and if this is important enough and if you all are serious about your business....hire prolexic

they will stop everything coming to you, they will take the heat and pass of the leftover to you..it is quite cool to see how their shit work, I have a very close friend that is a pretty high level tech there

they are expensive, and it will cost you $6-10k

because someone probably pasted it straight from their inbox and didn't paste the source

I get thousands of spam a day, I am doing a search in my deleted items now for something for you

That sucks big time :(

We have already contacted them. Also other solution providers for ddos. It was not a question to contact them. This was the first thing once we read about them here. I'm afraid the quote is going to be more a six figure quote, not 10K.

oh wow, holy shit

sounds like they want a contract up front guaranteeing them a certain time period of coverage

hey gero, glad talking with my buddy worked out...wish I had some influence on their pricing, but I guarantee once they tap into it you will be back up

sent it..
got a few more if you want them too...

Thanks, please send more.

In the mean time we contracted prolexic. They guaranteed to put us back up in 24hrs.